Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: TPDcAiqDFyKjnOuFXWc3f9OqHgB/oQlA4zlSDbjMX6A=
Subject key identifier: 32:6F:51:5E:6E:A3:37:3C:C6:98:D8:E2:21:2D:3F:B3:6D:72:15:19
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 019D3977E1E539B412B4E5506736458AD528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 101C
Signing time: Sun 29 Mar 2026 12:00:51 +0000
Manifest this update: Sun 29 Mar 2026 12:00:51 +0000
Manifest next update: Mon 30 Mar 2026 12:00:51 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: WXKx1IsoyuC1xHa/R+HC/bO72mJ0YcnnLUsneDW6gDE=)
2: hCRU042AoO-wp1TNEdYzfOG7kyM.roa (hash: 458hq105l3Yhrg7POKX+Z5+Z9IN5XlkejgNFXz79fUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:e1:e5:39:b4:12:b4:e5:50:67:36:45:8a:d5:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Mar 29 12:00:51 2026 GMT
Not After : Mar 30 12:00:51 2026 GMT
Subject: CN=326f515e6ea3373cc698d8e2212d3fb36d721519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ec:5e:52:62:4a:e3:4a:68:92:cd:0c:2d:75:
72:b1:8f:8d:9c:16:55:74:0f:b3:79:45:c1:ab:30:
e0:96:31:ad:60:d2:a1:80:80:9e:45:fe:d9:62:7b:
5a:3d:5d:94:93:a9:e6:a6:53:64:f4:3a:fd:ac:72:
30:fa:08:59:a7:be:74:54:21:9a:72:da:02:de:9f:
89:73:95:6f:e5:01:ad:16:8b:3c:42:31:ba:12:f4:
ca:10:65:b0:3b:04:6b:11:47:41:0d:b5:cd:68:ae:
53:bf:0e:70:95:85:2e:f3:f8:7f:97:86:3d:76:0c:
7d:ae:f1:e3:7d:16:bb:d1:05:6b:91:1b:bf:87:d7:
de:55:1b:66:29:5e:aa:72:d8:b1:1f:d6:03:ba:57:
ad:a6:98:99:2d:f9:f0:2f:c6:1f:55:9b:b8:ad:79:
99:5d:fc:ac:e8:ed:33:14:6f:84:34:f1:f9:ed:16:
a5:1a:75:bb:83:1b:48:be:c1:c9:de:6a:f2:86:34:
a0:23:f9:a7:51:7a:61:c9:af:fb:13:53:65:7e:0b:
b3:7c:84:9a:be:a5:c5:2a:e1:9f:c1:a8:c6:c9:bd:
94:96:55:15:61:f3:e2:df:c6:45:8a:d5:11:d8:c8:
2c:74:17:c3:5b:ed:da:93:cc:08:31:b4:45:56:c7:
10:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6F:51:5E:6E:A3:37:3C:C6:98:D8:E2:21:2D:3F:B3:6D:72:15:19
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:92:5e:76:3b:04:47:ea:b8:2e:6f:43:88:3a:2b:e2:1b:16:
40:27:3d:52:c0:b5:c5:09:c6:80:e3:4f:e5:70:5a:8a:53:04:
0b:47:72:74:87:16:0c:a2:fc:a9:2b:4f:37:ce:0e:6e:40:82:
e0:34:4f:98:6d:98:49:49:64:a1:2f:88:ad:7d:aa:a6:0a:31:
76:50:c8:bc:30:96:45:bb:44:7a:df:ff:5a:fc:79:70:92:f3:
7d:43:0e:39:22:ef:5e:02:43:c8:3f:aa:d9:c0:84:4e:9a:70:
91:20:c8:90:eb:75:c0:a3:83:4e:e7:c8:be:fb:b8:77:14:bc:
46:5c:c5:41:76:16:88:d3:9f:22:88:10:88:a0:67:49:d3:91:
95:a8:33:19:76:1c:18:41:83:24:53:b8:f2:e0:82:8e:75:1e:
87:48:8e:e2:6f:28:7c:a3:46:65:a5:e9:71:68:ea:40:35:60:
79:6f:01:e1:b7:5c:06:26:6b:cc:3c:dc:c7:62:ee:0d:b3:d0:
53:cb:18:f5:f0:47:4c:4c:7d:03:51:42:8f:df:9a:05:20:b2:
d5:11:f3:f6:d5:30:ba:81:bf:c9:60:09:9c:78:55:36:3b:68:
a8:99:46:4c:13:de:34:0f:bb:9d:bb:6c:d9:14:73:d1:32:a2:
ae:a5:50:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:03 2026 by rpki-client